I have setup cert auth with a CA. Client machines will authenticate to Vault using their keys, and will have a policy that let each machine write secrets on a path that matches their respective CN. The secrets engine is KV2.
As for the create/update policy path , this works:
However, this does not work:
According to the documentation I expected that this would work with .metadata.common_name, instead of .name.
What am I missing?